On Thu, Mar 24, 2011 at 1:38 PM, Conor Murphy <conor_murphy_virt@xxxxxxxxxxx> wrote: > #4 _int_free (av=<value optimized out>, p=0x7fa24c0009f0, have_lock=0) at > malloc.c:4795 > #5 0x00000000004a18fe in qemu_vfree (ptr=0x7fa24c000a00) at oslib-posix.c:76 > #6 0x000000000045af3d in handle_aiocb_rw (aiocb=0x7fa2dc034cd0) at > posix-aio-compat.c:301 I don't see a way for a double-free to occur so I think something has overwritten the memory preceeding the allocated buffer. In gdb you could inspect the aiocb structure to look at its aio_iov[], aio_niov, and aio_nbytes fields. They might be invalid or corrupted somehow. You could also dump out the memory before 0x7fa24c000a00, specifically 0x7fa24c0009f0, to see if you notice any pattern or printable characters that give a clue as to what has corrupted the memory here. Are you running qemu-kvm.git/master? Stefan -- To unsubscribe from this list: send the line "unsubscribe kvm" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
